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IN THE CLAIMS: 

1 . (Original) A method in a data processing system for automatically configuring IP 
security tunnels, said method comprising the steps of: 

establishing a security policy specification format capable of being utilized by a 
plurality of different operating systems and a plurality of different machine types; and 

defining a configuration of an IP security tunnel utilizing said seciuity policy 
specification format. 

2. (Original) The method according to claim 1, further comprising the step of 
establishing said security policy specification format as a DTD file. 

3. (Original) The method according to claim 2, further comprising the step of 
including a plurality of different elements in said DTD file, each of said plurality of 
different elements being utilized to configure an IP security tunnel. 

4. (Currentiy amended) The method according to claim [f 1 ]]^ further comprising 
the steps of: 

generating an XML file utilizing a plurality of said plurality of different elements 
[[tags]] included within said DTD file; and 

processing said XML file to automatically configure an IP security tunnel. 

5. (Original) The method according to claim 1 , further comprising the step of 
including a root dement in said security policy specification format 

6. (Original) The method according to claim 1, further comprising the step of 
establishing a protection element in said security policy specification format, said 
protection element including a listing of IKE transforms. 

7. (Original) The method according to claim 1 , further comprising the step of 
establishing a transform element in said security policy specification format 
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8. (Original) The method according to claim 1, ftirther comprismg the step of 
establishing a group element in said security policy specification format. 

9. (Onginal) The method according to claim 1 , further comprising the step of 
establishing an identification element in said security policy specification foraiat 

1 0. (Original) The method according to claim I, further comprising the step of 
establishing a tunnel element in said security policy specification format 

1 L (Original) The method according to claim I, further comprising the step of 
establishing a root element, a protection element, a transform element, a group element, 
an identification element, a tuimel element, a local/remote identify element, an ID type 
element, an ID definition element, a pre-shared key element, an IPsec proposal element, 
an IPsec ESP protocol element, an IPsec authentication header element, and an IPsec 
protection element in said security policy specification format. 

12. (Original) The method according to claim 1 , further comprising the step of 
automatically configuring an IP security turmel utilizing said security policy specification 
format 

13. (Original) The method according to claim 1 , further comprising the step of 
comparing a fu-st IP security tunnel to a second IP security tunnel utilizing a first secxuity 
policy specification format that is associated with said first IP security tunnel and a 
second security policy specification format that is associated with a second IP security 
tunnel. 

14. (Currently amended) A computer program product comprising: 

a compute r usable medium having computer usable program code for defining a 
configuration of IP security tutmels, comprising: 

inotruotion moona computer usable program code f or establishing a security policy 
specification format capable of being utilized by a plurality of different operating systems 
and a plurality of different machine types; [[and]] 
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inotruotion mooDo computer usablej>ro^amj^_de,f of automatically configuring an 
IP security tunnel utilizing said security policy specification format. 

15. (Curretitly aitiended) The product according to claim 14, further comprising 
ingtruotion meona computer usable program code for establishing said security policy 
specification format as a DTD file. 

1 6. (Currently amended) The product according to claim 14 {[15]], further 
comprising ingtruotion m e ans computer usable program code for including a plurality of 
different elements in said DTD file, each of said plurality of different elements being 
utilized to configure an IP security tunnel. 

1 7. (Currently amended) The product according to claim [[14]] 16. fiirfher 
comprising: 

inntruorion moons computer usable program code f or generating an XML file 
utilizing a plurality of said plurality o f different elements [[tags]] included within said 
DTD file; and 

44 Wtruc3tion meono computer usable program code f or processing said XML file to 
automatically configure an IP security tunnel. 

1 8. (Currently amended) The product according to claim 14, further comprising 
fflgfruction m e ono computer usable program code for including a root element in said 
security policy specification format. 

19. (Currently amended) The product according to claim 14, finther comprising 
Hwtruotion -flaemft computer usable program code for establishing a protection clement in 
said security policy specification format, said protection element including a listing of 
IKE transforms. 

20. (Currently amended) The product according to claim 14, further comprising 
inotruotion moom computer u sable program code f or establishing a transform clement in 
said security policy specification format. 
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2 1 . (Currently amended) The product according to claim 1 4, further comprising 
imtruotion moang computer usable program code f or establishing a group element in said 
security policy specification format 

22. (Currently amended) The product according to claim 14, further comprising 
ingtruotion mcono computer usable program code for establishing an identification 
element in said security policy specification format. 

23. (Currently amended) The product according to claim 14, further comprising 
instruotion moono computer usable program code for establishing a tunnel element in said 
security policy specification format. 

24. (Currently amended) The product according to claim 14, finlher comprising 
inotruotion mcona computer usable program code for establishing a root element, a 
protection element, a transform element, a group element, an identification element, a 
tunnel element, a local/remote identify element, an ID type element, an ID definition 
element, a pre-shared key clement, an IPsec proposal element, an IPsec ESP protocol 
element, an IPsec authentication header element, and an IPsec protection element in said 
security policy specification format. 

25. (Currently amended) The product according to claim 14, further comprising 
infltruotion moans computer u sable program code f or automatically configuring an IP 
security tunnel utilizing said security policy specification format. 

26. (Currently amended) The product according to claim 14, further comprising 
inotruotion moono computer usable program code f or comparing a first IP security tunnel 
to a second IP security mnnel utilizing a first security policy specification foimat that is 
associated with said first IP security tunnel and a second security policy specification 
format that is associated with a second IP security mnneJ. 

27. (Currcntiy amended) A data processinR system for automatically configuring 
dofining - ft oonfigurotion of IP security tunnels, comprising: 
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a security policy specification format capable of being utilized by a plurality of 
diflfenent operating systems and a plurality of dififerent machine types; and 

said system for automatically configuring an IP security tunnel utilizing said 
security policy specification format 

28. (Original) The system according to claim 27, further comprising said security 
policy specification fonnat being established as a DTD file. 

29. (Original) The system according to claim 28, further comprising a plurality of 
different elements being included in said DTD file, each of said plurality of diflfeient 
elements being utilized to configure an IP security tunnel. 

30. (Cuncntly amended) The system according to claim rr27l l 29. further 
comprising: 

an XML file being generated utilizing a plurality of said plurality o f different 
elements [[tags]] included within said DTD file; and 

said system for processing said XML file to automaticaUy configui^ an IP 
security tunnel 

3 1 . (Original) The system according to claim 27, further comprising a root clement 
being included in said security policy specification format. 

32. (Original) The system according to claim 27, further comprising a protection 
element being included in said security policy specification fonnat, said protection 
element including a listing of IKE transfonns. 

33. (Original) The system according to claim 27, further comprising a transform 
element being included in said security policy specification format 

34. (Original) The system according to claim 27, further comprising a group element 
being included in said security policy specification format. 
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35. (Original) The system according to claim 27, further comprising an identification 
element being included in said security policy specification format 

36. (Original) The system according to claim 27, further comprising a tunnel element 
being included in said security policy specification format. 

37. (Original) The system according to claim 27, fiirther comprising a root element, a 
protection element, a transform element, a group element, an identification element, a 
tunnel element, a local/remote identify element, an ID type element, an ID definition 
element, a pre-shared key element, an IPsec proposal element, an IPsec ESP protocol 
clement, an IPsec authentication header element, and an IPsec protection element being 
included in said security policy specification format. 

38. (Original) The system according to claim 27, further comprising said system for 
automatically configuring an IP security tunnel utilizing said security policy specification 
format 

39. (Original) The system accotxiing to claim 27, fijrthcr comprising said system for 
comparing a first IP security tunnel to a second IP security tunnel utilizing a first security 
policy specification format that is associated with said first IP security tunnel and a 
second security policy specification format that is associated with a second DP security 
tunnel. 
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